Forum Discussion

New Contributor

4 years ago

Solved

New CVE-2021-45105 for log4j

On december 19th a new vulnerability was found in log4j 2.16.0 Are there any plans to upgrade to log4j 2.17.0 as suggested by Apache? As long as this upgrrade is not implemented, I am not allowed to use SOAP UI which makes my test work much more difficult

SOAP

4 Replies

sonya_m
Alumni
4 years ago
Copy Link
Hi doom71, there's a fresh update on that on the SmartBear site, please refer to this page: https://smartbear.com/security/cve-2021-44228/
- doom71
  New Contributor
  4 years ago
  Copy Link
  Ah yes. Didn't know that page was available. Thanks for your quick reply 👍
  - HKosova
    Alumni
    4 years ago
    Copy Link
    doom71 we've released SoapUI 5.7.0 which uses Log4j 2.17.1
    
    https://github.com/SmartBear/soapui/releases

Forum Discussion

New CVE-2021-45105 for log4j

4 Replies

Recent Discussions

No Fluff Just Real Stuff - latest newsletter from the DevRel Team at SmartBear

Which current version of POI bin files is compatible with SOAP UI 5.5 free version ?

sonatype-2016-0133

Related Content

Log4J vulnerability

Does SoapUI 5.6.0 has log4j vulnerability?

SoapUI 5.5.0 Log4j vulnerability